Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/68b464-2460-4e53-ade3-6b96c8361265/1/TuwmeuLxv5Xm16FCCA5d96MTlJI.mft
File: TuwmeuLxv5Xm16FCCA5d96MTlJI.mft (raw, json)
Hash identifier: C88FmpdW0LGxl/YcRirjpFn/x0yaV4bv5orTsNRW+Es=
Subject key identifier: 94:11:EA:83:D3:E0:30:EA:FD:1F:03:32:64:7B:27:CC:AB:9D:D5:DD
Authority key identifier: 4E:EC:26:7A:E2:F1:BF:95:E6:D7:A1:42:08:0E:5D:F7:A3:13:94:92
Certificate issuer: /CN=4eec267ae2f1bf95e6d7a142080e5df7a3139492
Certificate serial: 019D38D2C4006DE048667E289B01E7519574
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuwmeuLxv5Xm16FCCA5d96MTlJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/68b464-2460-4e53-ade3-6b96c8361265/1/TuwmeuLxv5Xm16FCCA5d96MTlJI.mft
Manifest number: 0D72
Signing time: Sun 29 Mar 2026 09:00:30 +0000
Manifest this update: Sun 29 Mar 2026 09:00:30 +0000
Manifest next update: Mon 30 Mar 2026 09:00:30 +0000
Files and hashes: 1: TuwmeuLxv5Xm16FCCA5d96MTlJI.crl (hash: 6xbuU7oHCK4ee2JJwS4Kcf3i8VQwqH2qpzM/NpDZZpM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/68b464-2460-4e53-ade3-6b96c8361265/1/TuwmeuLxv5Xm16FCCA5d96MTlJI.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/68b464-2460-4e53-ade3-6b96c8361265/1/TuwmeuLxv5Xm16FCCA5d96MTlJI.mft
rsync://rpki.ripe.net/repository/DEFAULT/TuwmeuLxv5Xm16FCCA5d96MTlJI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:c4:00:6d:e0:48:66:7e:28:9b:01:e7:51:95:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4eec267ae2f1bf95e6d7a142080e5df7a3139492
Validity
Not Before: Mar 29 09:00:30 2026 GMT
Not After : Mar 30 09:00:30 2026 GMT
Subject: CN=9411ea83d3e030eafd1f0332647b27ccab9dd5dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:d9:cd:e9:60:1f:2e:b7:28:da:74:e1:ba:e0:
25:7a:83:61:03:ae:e7:ef:e4:1a:6d:00:21:d7:c3:
38:40:3b:a5:42:0f:b2:77:6d:65:e7:3c:94:b0:ba:
7b:f0:4d:0c:70:29:d9:0a:c5:44:a0:00:bd:01:13:
fd:c8:2d:9a:aa:94:68:fd:33:ea:ee:4d:41:6d:43:
64:c6:51:ac:dd:fa:4b:f3:6c:3a:1e:d5:53:90:32:
1f:e9:0d:7d:39:1f:d5:8a:31:c7:f6:26:15:f9:ab:
25:1c:6c:3e:76:8e:2a:f3:7c:b4:02:62:0f:e1:8f:
e8:61:99:08:12:2d:70:a4:3e:f6:f1:56:1f:d9:53:
d2:61:2f:68:6b:4b:cd:c2:bc:4c:d9:50:32:42:e9:
50:6d:03:f9:21:40:94:88:d3:98:cb:87:40:43:6c:
2c:8d:10:99:8a:16:df:89:41:82:0a:5b:e8:dd:35:
c3:22:6e:6b:bc:9c:15:e8:a1:2c:44:c7:da:f7:4c:
fb:6a:fb:fb:93:f2:e2:9b:2c:23:dc:39:d6:29:d8:
c9:21:d5:69:a1:f8:0f:b1:08:3b:a8:27:6b:0f:b8:
d8:ff:e8:96:9e:fd:c8:0a:ff:1e:fc:e2:4b:a5:80:
7d:d9:1c:0c:db:84:54:d3:03:a0:6d:6e:3d:b3:50:
14:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:11:EA:83:D3:E0:30:EA:FD:1F:03:32:64:7B:27:CC:AB:9D:D5:DD
X509v3 Authority Key Identifier:
keyid:4E:EC:26:7A:E2:F1:BF:95:E6:D7:A1:42:08:0E:5D:F7:A3:13:94:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuwmeuLxv5Xm16FCCA5d96MTlJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/68b464-2460-4e53-ade3-6b96c8361265/1/TuwmeuLxv5Xm16FCCA5d96MTlJI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/68b464-2460-4e53-ade3-6b96c8361265/1/TuwmeuLxv5Xm16FCCA5d96MTlJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:25:ff:66:0d:00:08:b7:ba:2f:f2:43:ad:fa:36:48:06:6c:
11:de:55:bd:7a:43:19:ea:25:2b:9e:4a:ea:64:65:72:17:44:
f1:df:1f:ce:0b:16:3e:20:7a:50:8d:29:39:85:f8:04:85:69:
80:0c:3e:97:e4:b0:6b:e5:19:34:af:22:9f:49:d4:35:54:9c:
ad:a5:5e:f0:3f:8c:cd:aa:ca:dc:fd:10:72:d7:a2:91:1d:7e:
6d:98:52:d8:a3:38:62:24:85:0f:bc:54:16:29:33:f8:cd:24:
64:dd:b0:cf:c8:65:c2:d2:d7:66:3a:d5:dc:c3:9e:51:6e:18:
71:b2:ff:c6:da:01:32:84:63:0a:64:11:1b:2a:40:e5:f9:46:
4f:2d:7c:35:3b:02:bb:1f:83:81:fd:ff:46:46:47:f5:cc:69:
9c:d0:eb:ec:5e:db:01:ef:b0:90:d2:79:72:1f:4a:12:6c:57:
99:e7:9d:b9:c4:2a:28:74:c1:aa:1a:46:78:5a:a2:12:62:b5:
47:fd:53:a8:6d:88:92:e8:18:a8:1e:da:9f:b3:73:8b:cf:2a:
a6:bb:e6:73:43:f5:76:fe:2b:f2:9c:71:35:db:4e:9b:cc:34:
81:c5:8c:38:2c:d6:0b:9e:b5:28:18:06:10:6e:5e:d2:3a:95:
8e:d1:66:6f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ040sQAbeBIZn4omwHnUZV0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlZWMyNjdhZTJmMWJmOTVlNmQ3YTE0MjA4MGU1ZGY3YTMx
Mzk0OTIwHhcNMjYwMzI5MDkwMDMwWhcNMjYwMzMwMDkwMDMwWjAzMTEwLwYDVQQD
Eyg5NDExZWE4M2QzZTAzMGVhZmQxZjAzMzI2NDdiMjdjY2FiOWRkNWRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3tnN6WAfLrco2nThuuAleoNhA67n
7+QabQAh18M4QDulQg+yd21l5zyUsLp78E0McCnZCsVEoAC9ARP9yC2aqpRo/TPq
7k1BbUNkxlGs3fpL82w6HtVTkDIf6Q19OR/VijHH9iYV+aslHGw+do4q83y0AmIP
4Y/oYZkIEi1wpD728VYf2VPSYS9oa0vNwrxM2VAyQulQbQP5IUCUiNOYy4dAQ2ws
jRCZihbfiUGCClvo3TXDIm5rvJwV6KEsRMfa90z7avv7k/Limywj3DnWKdjJIdVp
ofgPsQg7qCdrD7jY/+iWnv3ICv8e/OJLpYB92RwM24RU0wOgbW49s1AUzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJQR6oPT4DDq/R8DMmR7J8yrndXdMB8GA1UdIwQY
MBaAFE7sJnri8b+V5tehQggOXfejE5SSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHV3bWV1THh2NVhtMTZGQ0NBNWQ5Nk1UbEpJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS82OGI0NjQtMjQ2MC00ZTUzLWFkZTMt
NmI5NmM4MzYxMjY1LzEvVHV3bWV1THh2NVhtMTZGQ0NBNWQ5Nk1UbEpJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS82OGI0NjQtMjQ2MC00ZTUzLWFkZTMtNmI5NmM4MzYxMjY1
LzEvVHV3bWV1THh2NVhtMTZGQ0NBNWQ5Nk1UbEpJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfiX/Zg0A
CLe6L/JDrfo2SAZsEd5VvXpDGeolK55K6mRlchdE8d8fzgsWPiB6UI0pOYX4BIVp
gAw+l+Swa+UZNK8in0nUNVScraVe8D+MzarK3P0QcteikR1+bZhS2KM4YiSFD7xU
Fikz+M0kZN2wz8hlwtLXZjrV3MOeUW4YcbL/xtoBMoRjCmQRGypA5flGTy18NTsC
ux+Dgf3/RkZH9cxpnNDr7F7bAe+wkNJ5ch9KEmxXmeeducQqKHTBqhpGeFqiEmK1
R/1TqG2IkugYqB7an7Nzi88qprvmc0P1dv4r8pxxNdtOm8w0gcWMOCzWC561KBgG
EG5e0jqVjtFmbw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 15:03:16 2026 by rpki-client